feat: add hosted database password update webhook endpoint

Add POST /saas/connection/hosted/password endpoint that rocketadmin-saas
calls when a hosted database password is reset, to update the stored
connection credentials in the backend.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

Author: gugu

backend/src/common/data-injection.tokens.ts

@@ -116,6 +116,7 @@ export enum UseCaseType {
 	SAAS_REGISTER_USER_WITH_SAML = 'SAAS_REGISTER_USER_WITH_SAML',
 	SAAS_CREATE_CONNECTION_FOR_HOSTED_DB = 'SAAS_CREATE_CONNECTION_FOR_HOSTED_DB',
 	SAAS_DELETE_CONNECTION_FOR_HOSTED_DB = 'SAAS_DELETE_CONNECTION_FOR_HOSTED_DB',
+	SAAS_UPDATE_HOSTED_CONNECTION_PASSWORD = 'SAAS_UPDATE_HOSTED_CONNECTION_PASSWORD',
 
 	INVITE_USER_IN_COMPANY_AND_CONNECTION_GROUP = 'INVITE_USER_IN_COMPANY_AND_CONNECTION_GROUP',
 	VERIFY_INVITE_USER_IN_COMPANY_AND_CONNECTION_GROUP = 'VERIFY_INVITE_USER_IN_COMPANY_AND_CONNECTION_GROUP',

backend/src/microservices/saas-microservice/data-structures/update-hosted-connection-password.dto.ts

@@ -0,0 +1,29 @@
+import { ApiProperty } from '@nestjs/swagger';
+import { IsNotEmpty, IsString, IsUUID } from 'class-validator';
+
+export class UpdateHostedConnectionPasswordDto {
+	@ApiProperty({
+		description: 'Company ID',
+		example: '123e4567-e89b-12d3-a456-426614174000',
+	})
+	@IsNotEmpty()
+	@IsString()
+	@IsUUID()
+	companyId: string;
+
+	@ApiProperty({
+		description: 'Database name',
+		example: 'my_database',
+	})
+	@IsNotEmpty()
+	@IsString()
+	databaseName: string;
+
+	@ApiProperty({
+		description: 'New database password',
+		example: 'new_secure_password',
+	})
+	@IsNotEmpty()
+	@IsString()
+	password: string;
+}

backend/src/microservices/saas-microservice/saas.controller.ts

@@ -16,6 +16,7 @@ import { SkipThrottle } from '@nestjs/throttler';
 import { UseCaseType } from '../../common/data-injection.tokens.js';
 import { Timeout } from '../../decorators/timeout.decorator.js';
 import { CompanyInfoEntity } from '../../entities/company-info/company-info.entity.js';
+import { CreatedConnectionDTO } from '../../entities/connection/application/dto/created-connection.dto.js';
 import { SaasUsualUserRegisterDS } from '../../entities/user/application/data-structures/usual-register-user.ds.js';
 import { FoundUserDto } from '../../entities/user/dto/found-user.dto.js';
 import { ExternalRegistrationProviderEnum } from '../../entities/user/enums/external-registration-provider.enum.js';
@@ -24,11 +25,14 @@ import { InTransactionEnum } from '../../enums/in-transaction.enum.js';
 import { Messages } from '../../exceptions/text/messages.js';
 import { SentryInterceptor } from '../../interceptors/sentry.interceptor.js';
 import { SuccessResponse } from './data-structures/common-responce.ds.js';
+import { CreateConnectionForHostedDbDto } from './data-structures/create-connecttion-for-selfhosted-db.dto.js';
+import { DeleteConnectionForHostedDbDto } from './data-structures/delete-connection-for-hosted-db.dto.js';
 import { RegisterCompanyWebhookDS } from './data-structures/register-company.ds.js';
 import { RegisteredCompanyDS } from './data-structures/registered-company.ds.js';
 import { SaasRegisterUserWithGithub } from './data-structures/saas-register-user-with-github.js';
 import { SaasSAMLUserRegisterDS } from './data-structures/saas-saml-user-register.ds.js';
 import { SaasRegisterUserWithGoogleDS } from './data-structures/sass-register-user-with-google.js';
+import { UpdateHostedConnectionPasswordDto } from './data-structures/update-hosted-connection-password.dto.js';
 import {
 	ICompanyRegistration,
 	ICreateConnectionForHostedDb,
@@ -45,10 +49,8 @@ import {
 	ISaasSAMLRegisterUser,
 	ISuspendUsers,
 	ISuspendUsersOverLimit,
+	IUpdateHostedConnectionPassword,
 } from './use-cases/saas-use-cases.interface.js';
-import { CreatedConnectionDTO } from '../../entities/connection/application/dto/created-connection.dto.js';
-import { CreateConnectionForHostedDbDto } from './data-structures/create-connecttion-for-selfhosted-db.dto.js';
-import { DeleteConnectionForHostedDbDto } from './data-structures/delete-connection-for-hosted-db.dto.js';
 
 @UseInterceptors(SentryInterceptor)
 @SkipThrottle()
@@ -91,6 +93,8 @@ export class SaasController {
 		private readonly createConnectionForHostedDbUseCase: ICreateConnectionForHostedDb,
 		@Inject(UseCaseType.SAAS_DELETE_CONNECTION_FOR_HOSTED_DB)
 		private readonly deleteConnectionForHostedDbUseCase: IDeleteConnectionForHostedDb,
+		@Inject(UseCaseType.SAAS_UPDATE_HOSTED_CONNECTION_PASSWORD)
+		private readonly updateHostedConnectionPasswordUseCase: IUpdateHostedConnectionPassword,
 	) {}
 
 	@ApiOperation({ summary: 'Company registered webhook' })
@@ -309,4 +313,17 @@ export class SaasController {
 	): Promise<CreatedConnectionDTO> {
 		return await this.deleteConnectionForHostedDbUseCase.execute(deleteConnectionData);
 	}
+
+	@ApiOperation({ summary: 'Update password of hosted database connection' })
+	@ApiBody({ type: UpdateHostedConnectionPasswordDto })
+	@ApiResponse({
+		status: 201,
+		type: SuccessResponse,
+	})
+	@Post('/connection/hosted/password')
+	async updateHostedConnectionPassword(
+		@Body() updatePasswordData: UpdateHostedConnectionPasswordDto,
+	): Promise<SuccessResponse> {
+		return await this.updateHostedConnectionPasswordUseCase.execute(updatePasswordData);
+	}
 }

backend/src/microservices/saas-microservice/saas.module.ts

@@ -7,6 +7,8 @@ import { UserEntity } from '../../entities/user/user.entity.js';
 import { SignInAuditEntity } from '../../entities/user-sign-in-audit/sign-in-audit.entity.js';
 import { SignInAuditService } from '../../entities/user-sign-in-audit/sign-in-audit.service.js';
 import { SaasController } from './saas.controller.js';
+import { CreateConnectionForHostedDbUseCase } from './use-cases/create-connection-for-hosted-db.use.case.js';
+import { DeleteConnectionForHostedDbUseCase } from './use-cases/delete-connection-for-hosted-db.use.case.js';
 import { FreezeConnectionsInCompanyUseCase } from './use-cases/freeze-connections-in-company.use.case.js';
 import { GetFullCompanyInfoByUserIdUseCase } from './use-cases/get-full-company-info-by-user-id.use.case.js';
 import { GetUserInfoUseCase } from './use-cases/get-user-info.use.case.js';
@@ -20,9 +22,8 @@ import { SaaSRegisterUserWIthSamlUseCase } from './use-cases/register-user-with-
 import { SaasUsualRegisterUseCase } from './use-cases/saas-usual-register-user.use.case.js';
 import { SuspendUsersUseCase } from './use-cases/suspend-users.use.case.js';
 import { SuspendUsersOverLimitUseCase } from './use-cases/suspend-users-over-limit.use.case.js';
-import { CreateConnectionForHostedDbUseCase } from './use-cases/create-connection-for-hosted-db.use.case.js';
-import { DeleteConnectionForHostedDbUseCase } from './use-cases/delete-connection-for-hosted-db.use.case.js';
 import { UnFreezeConnectionsInCompanyUseCase } from './use-cases/unfreeze-connections-in-company-use.case.js';
+import { UpdateHostedConnectionPasswordUseCase } from './use-cases/update-hosted-connection-password.use.case.js';
 
 @Module({
 	imports: [TypeOrmModule.forFeature([SignInAuditEntity, UserEntity])],
@@ -95,6 +96,10 @@ import { UnFreezeConnectionsInCompanyUseCase } from './use-cases/unfreeze-connec
 			provide: UseCaseType.SAAS_DELETE_CONNECTION_FOR_HOSTED_DB,
 			useClass: DeleteConnectionForHostedDbUseCase,
 		},
+		{
+			provide: UseCaseType.SAAS_UPDATE_HOSTED_CONNECTION_PASSWORD,
+			useClass: UpdateHostedConnectionPasswordUseCase,
+		},
 		SignInAuditService,
 	],
 	controllers: [SaasController],
@@ -120,6 +125,7 @@ export class SaasModule {
 				{ path: 'saas/user/saml/login', method: RequestMethod.POST },
 				{ path: 'saas/connection/hosted', method: RequestMethod.POST },
 				{ path: 'saas/connection/hosted/delete', method: RequestMethod.POST },
+				{ path: 'saas/connection/hosted/password', method: RequestMethod.POST },
 			);
 	}
 }

backend/src/microservices/saas-microservice/use-cases/saas-use-cases.interface.ts

@@ -17,6 +17,7 @@ import { SaasRegisterUserWithGithub } from '../data-structures/saas-register-use
 import { SaasSAMLUserRegisterDS } from '../data-structures/saas-saml-user-register.ds.js';
 import { SaasRegisterUserWithGoogleDS } from '../data-structures/sass-register-user-with-google.js';
 import { SuspendUsersDS } from '../data-structures/suspend-users.ds.js';
+import { UpdateHostedConnectionPasswordDto } from '../data-structures/update-hosted-connection-password.dto.js';
 
 export interface ICompanyRegistration {
 	execute(inputData: RegisterCompanyWebhookDS): Promise<RegisteredCompanyDS>;
@@ -77,3 +78,7 @@ export interface ICreateConnectionForHostedDb {
 export interface IDeleteConnectionForHostedDb {
 	execute(inputData: DeleteConnectionForHostedDbDto): Promise<CreatedConnectionDTO>;
 }
+
+export interface IUpdateHostedConnectionPassword {
+	execute(inputData: UpdateHostedConnectionPasswordDto): Promise<SuccessResponse>;
+}

backend/src/microservices/saas-microservice/use-cases/update-hosted-connection-password.use.case.ts

@@ -0,0 +1,43 @@
+import { Inject, Injectable, NotFoundException, Scope } from '@nestjs/common';
+import AbstractUseCase from '../../../common/abstract-use.case.js';
+import { IGlobalDatabaseContext } from '../../../common/application/global-database-context.interface.js';
+import { BaseType } from '../../../common/data-injection.tokens.js';
+import { Messages } from '../../../exceptions/text/messages.js';
+import { SuccessResponse } from '../data-structures/common-responce.ds.js';
+import { UpdateHostedConnectionPasswordDto } from '../data-structures/update-hosted-connection-password.dto.js';
+import { IUpdateHostedConnectionPassword } from './saas-use-cases.interface.js';
+
+@Injectable({ scope: Scope.REQUEST })
+export class UpdateHostedConnectionPasswordUseCase
+	extends AbstractUseCase<UpdateHostedConnectionPasswordDto, SuccessResponse>
+	implements IUpdateHostedConnectionPassword
+{
+	constructor(
+		@Inject(BaseType.GLOBAL_DB_CONTEXT)
+		protected _dbContext: IGlobalDatabaseContext,
+	) {
+		super();
+	}
+
+	protected async implementation(inputData: UpdateHostedConnectionPasswordDto): Promise<SuccessResponse> {
+		const { companyId, databaseName, password } = inputData;
+
+		const foundCompany =
+			await this._dbContext.companyInfoRepository.findCompanyInfoByCompanyIdWithoutConnections(companyId);
+		if (!foundCompany) {
+			throw new NotFoundException(Messages.COMPANY_NOT_FOUND);
+		}
+
+		const connection = await this._dbContext.connectionRepository.findOne({
+			where: { company: { id: companyId }, database: databaseName },
+		});
+		if (!connection) {
+			throw new NotFoundException(Messages.CONNECTION_NOT_FOUND);
+		}
+
+		connection.password = password;
+		await this._dbContext.connectionRepository.saveUpdatedConnection(connection);
+
+		return { success: true };
+	}
+}